Code Review
/
vfc
/
nfvo
/
wfengine.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
review
|
tree
raw
|
inline
| side by side
Remove sudo capability for onap user for VF-C wfengine activiti-extension & wfenginem...
[vfc/nfvo/wfengine.git]
/
activiti-extension
/
src
/
main
/
docker
/
Dockerfile
diff --git
a/activiti-extension/src/main/docker/Dockerfile
b/activiti-extension/src/main/docker/Dockerfile
index
dd207cd
..
21bde27
100644
(file)
--- a/
activiti-extension/src/main/docker/Dockerfile
+++ b/
activiti-extension/src/main/docker/Dockerfile
@@
-1,22
+1,16
@@
-F
R
OM openjdk:8u121-jre-alpine
+FOM openjdk:8u121-jre-alpine
LABEL maintainer=Zhaoxing(mzhx.meng@gmail.com)
WORKDIR /home/onap/workflow/wfengineactiviti
LABEL maintainer=Zhaoxing(mzhx.meng@gmail.com)
WORKDIR /home/onap/workflow/wfengineactiviti
-EXPOSE 8080
-
RUN apk add --update curl && \
RUN apk add --update curl && \
-
apk --no-cache add sudo
&& \
+
rm -rf /var/cache/apk/*
&& \
addgroup -g 1000 -S onap && \
addgroup -g 1000 -S onap && \
- adduser onap -D -G onap -u 1000 && \
- chmod u+w /etc/sudoers && \
- sed -i '/User privilege/a\\onap ALL=(ALL:ALL) NOPASSWD:ALL' /etc/sudoers && \
- chmod u-x /etc/sudoers && \
- rm -rf /var/cache/apk/*
+ adduser onap -D -G onap -u 1000
ADD apache-tomcat /home/onap/workflow/wfengineactiviti/
RUN chmod 755 /home/onap/workflow/wfengineactiviti/bin/*.sh && chown onap:onap -R /home/onap
USER onap
ADD apache-tomcat /home/onap/workflow/wfengineactiviti/
RUN chmod 755 /home/onap/workflow/wfengineactiviti/bin/*.sh && chown onap:onap -R /home/onap
USER onap
-WORKDIR /home/onap/workflow/wfengineactiviti
+EXPOSE 8080
ENTRYPOINT ["./bin/entrypoint.sh"]
CMD ["start"]
ENTRYPOINT ["./bin/entrypoint.sh"]
CMD ["start"]